Lucene search
+L

CVE-2015-5161

🗓️ 25 Aug 2015 17:00:00Reported by redhatType 
cve
 cve
🔗 web.nvd.nist.gov👁 201 Views

Zend_Xml_Security::scan in ZendXml before 1.0.1 and Zend Framework before 1.12.14 allows remote attackers to bypass security checks and conduct XML external entity (XXE) and entity expansion (XEE) attacks

Related
Detection
Refs
NVD
Node
OR
zendzend_frameworkMatch1.0.0rc1
zendzend_frameworkMatch1.0.0rc2
zendzend_frameworkMatch1.0.0rc2a
zendzend_frameworkMatch1.0.0rc3
zendzend_frameworkMatch1.5.0rc1
zendzend_frameworkMatch1.5.0rc2
zendzend_frameworkMatch1.5.0rc3
zendzend_frameworkMatch1.6.0rc1
zendzend_frameworkMatch1.6.0rc2
zendzend_frameworkMatch1.6.0rc3
zendzend_frameworkMatch1.7.0pl1
zendzend_frameworkMatch1.7.0pr
zendzend_frameworkMatch1.7.3pl1
zendzend_frameworkMatch1.8.0a1
zendzend_frameworkMatch1.8.0b1
zendzend_frameworkMatch1.8.4pl1
zendzend_frameworkMatch1.9.0a1
zendzend_frameworkMatch1.9.0b1
zendzend_frameworkMatch1.9.0rc1
zendzend_frameworkMatch1.9.3pl1
zendzend_frameworkMatch1.10.0alpha1
zendzend_frameworkMatch1.10.0beta1
zendzend_frameworkMatch1.10.0rc1
zendzend_frameworkMatch1.11.0b1
zendzend_frameworkMatch1.11.0rc1
zendzend_frameworkMatch1.11.10
zendzend_frameworkMatch1.11.11
zendzend_frameworkMatch1.11.12
zendzend_frameworkMatch1.11.13
zendzend_frameworkMatch1.12.0rc1
zendzend_frameworkMatch1.12.0rc2
zendzend_frameworkMatch1.12.0rc3
zendzend_frameworkMatch1.12.0rc4
zendzend_frameworkMatch1.12.10
zendzend_frameworkMatch1.12.11
zendzend_frameworkMatch1.12.12
zendzend_frameworkMatch1.12.13
zendzend_frameworkMatch2.0.0rc1
zendzend_frameworkMatch2.0.0rc2
zendzend_frameworkMatch2.0.0rc3
zendzend_frameworkMatch2.0.0rc4
zendzend_frameworkMatch2.0.0rc5
zendzend_frameworkMatch2.0.0rc6
zendzend_frameworkMatch2.0.0rc7

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 00:28Current
8.3High risk
Vulners AI Score8.3
CVSS 26.8
EPSS0.09911
201